Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
6251 9.8 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-41497 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
6252 9.8 緊急
Network 		Electerm project Electerm Electerm projectのElectermにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-41500 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
6253 9.8 緊急
Network 		Electerm project Electerm Electerm projectのElectermにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-41501 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
6254 7.8 重要
Local 		Sebastian Bergmann PHPUnit Sebastian BergmannのPHPUnitにおける複数の脆弱性 CWE-88
CWE-93
CVE-2026-41570 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
6255 7.5 重要
Network 		Zcash Foundation Zebra-chain
Zebrad 		Zcash FoundationのZebra-chain等の複数製品における到達可能なアサーションに関する脆弱性 CWE-617
到達可能なアサーション 		CVE-2026-41584 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
6256 5.3 警告
Network 		projectdiscovery Nuclei ProjectDiscovery, Inc.のNucleiにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-41645 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
6257 5.5 警告
Local 		projectdiscovery Nuclei ProjectDiscovery, Inc.のNucleiにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41646 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
6258 8.1 重要
Network 		- OpenC3のOpenC3 COSMOSにおける未検証のパスワード変更に関する脆弱性 CWE-620
未検証のパスワード変更 		CVE-2026-42084 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
6259 4.3 警告
Network 		- OpenC3のOpenC3 COSMOSにおける相対パストラバーサルの脆弱性 CWE-23
相対的パストラバーサル 		CVE-2026-42085 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
6260 4.6 警告
Network 		- OpenC3のOpenC3 COSMOSにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42086 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347381 - sambar sambar_server Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP GET request. NVD-CWE-Other
CVE-1999-1523 2017-12-19 11:29 1999-10-4 Show GitHub Exploit DB Packet Storm
347382 - macromedia shockwave_flash_plugin Macromedia Shockwave before 6.0 allows a malicious webmaster to read a user's mail box and possibly access internal web servers via the GetNextText command on a Shockwave movie. NVD-CWE-Other
CVE-1999-1525 2017-12-19 11:29 1997-03-14 Show GitHub Exploit DB Packet Storm
347383 - macromedia shockwave_flash_plugin Auto-update feature of Macromedia Shockwave 7 transmits a user's password and hard disk information back to Macromedia. NVD-CWE-Other
CVE-1999-1526 2017-12-19 11:29 1999-03-11 Show GitHub Exploit DB Packet Storm
347384 - trend_micro interscan_viruswall A buffer overflow exists in the HELO command in Trend Micro Interscan VirusWall SMTP gateway 3.23/3.3 for NT, which may allow an attacker to execute arbitrary code. NVD-CWE-Other
CVE-1999-1529 2017-12-19 11:29 1999-11-7 Show GitHub Exploit DB Packet Storm
347385 - trend_micro interscan_viruswall Eicon Technology Diva LAN ISDN modem allows a remote attacker to cause a denial of service (hang) via a long password argument to the login.htm file in its HTTP service. NVD-CWE-Other
CVE-1999-1533 2017-12-19 11:29 1999-11-7 Show GitHub Exploit DB Packet Storm
347386 - qpc_software qvt_net
qvt_term_plus 		Buffer overflow in FTP server in QPC Software's QVT/Term Plus versions 4.2d and 4.3 and QVT/Net 4.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via … NVD-CWE-Other
CVE-1999-1539 2017-12-19 11:29 1999-11-10 Show GitHub Exploit DB Packet Storm
347387 - cactus_software shell-lock shell-lock in Cactus Software Shell Lock uses weak encryption (trivial encoding) which allows attackers to easily decrypt and obtain the source code. NVD-CWE-Other
CVE-1999-1540 2017-12-19 11:29 1999-10-4 Show GitHub Exploit DB Packet Storm
347388 - cactus_software shell-lock shell-lock in Cactus Software Shell Lock allows local users to read or modify decoded shell files before they are executed, via a symlink attack on a temporary file. NVD-CWE-Other
CVE-1999-1541 2017-12-19 11:29 1999-10-4 Show GitHub Exploit DB Packet Storm
347389 - ibm navio_nc_browser netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS as world-readable and world-writable. NVD-CWE-Other
CVE-1999-1546 2017-12-19 11:29 1999-01-29 Show GitHub Exploit DB Packet Storm
347390 - ipswitch imail Buffer overflow in Ipswitch IMail Service 5.0 allows an attacker to cause a denial of service (crash) and possibly execute arbitrary commands via a long URL. NVD-CWE-Other
CVE-1999-1551 2017-12-19 11:29 1999-03-2 Show GitHub Exploit DB Packet Storm